CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9663

An Cleartext Storage of Sensitive Information issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/102481
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-04
http://www.securityfocus.com/bid/102481
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-04

Products affected by CVE-2017-9663

Gm » Shanghai Onstar » Version: 7.1

cpe:2.3:a:gm:shanghai_onstar:7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9663

Products

Pricing

Contact Us